Message ID | 20240122161842.8557-1-simone.p.weiss@posteo.com |
---|---|
State | Accepted |
Headers | show |
Series | [v2] gcc: Upgidate status of CVE-2023-4039 | expand |
On Mon, 2024-01-22 at 16:18 +0000, Simone Weiß wrote: > From: Simone Weiß <simone.p.weiss@posteo.com> > > This is fixed via a patch added in gcc-13.2.inc already, but still > reported e.g. for libgcc as it is not defining an own source but use > the > shared gcc-source. > > Signed-off-by: Simone Weiß <simone.p.weiss@posteo.com> > --- > meta/recipes-devtools/gcc/libgcc-initial_13.2.bb | 2 ++ > 1 file changed, 2 insertions(+) > > diff --git a/meta/recipes-devtools/gcc/libgcc-initial_13.2.bb > b/meta/recipes-devtools/gcc/libgcc-initial_13.2.bb > index a259082b47..fd66692185 100644 > --- a/meta/recipes-devtools/gcc/libgcc-initial_13.2.bb > +++ b/meta/recipes-devtools/gcc/libgcc-initial_13.2.bb > @@ -3,3 +3,5 @@ require libgcc-initial.inc > > # Building with thumb enabled on armv6t fails > ARM_INSTRUCTION_SET:armv6 = "arm" > + > +CVE_STATUS[CVE-2023-4039] = "fixed-version: Fixed via CVE-2023- > 4039.patch in gcc-13-2.inc which is added via require here" > > -=-=-=-=-=-=-=-=-=-=-=- > Links: You receive all messages sent to this group. > View/Reply Online (#194182): > https://lists.openembedded.org/g/openembedded-core/message/194182 > Mute This Topic: https://lists.openembedded.org/mt/103889417/8071792 > Group Owner: openembedded-core+owner@lists.openembedded.org > Unsubscribe: > https://lists.openembedded.org/g/openembedded-core/unsub [ > simone.weiss@posteo.net] > -=-=-=-=-=-=-=-=-=-=-=- > Please ignore this. I made a rebase error. I will send a corrected version. Sorry Simone
diff --git a/meta/recipes-devtools/gcc/libgcc-initial_13.2.bb b/meta/recipes-devtools/gcc/libgcc-initial_13.2.bb index a259082b47..fd66692185 100644 --- a/meta/recipes-devtools/gcc/libgcc-initial_13.2.bb +++ b/meta/recipes-devtools/gcc/libgcc-initial_13.2.bb @@ -3,3 +3,5 @@ require libgcc-initial.inc # Building with thumb enabled on armv6t fails ARM_INSTRUCTION_SET:armv6 = "arm" + +CVE_STATUS[CVE-2023-4039] = "fixed-version: Fixed via CVE-2023-4039.patch in gcc-13-2.inc which is added via require here"